mkkeyserver

Use the mkkeyserver command to create a key server object.

Syntax

Read syntax diagramSkip visual syntax diagram
>>- mkkeyserver -- -- -ip --ip_address-- --+---------------+---->
                                           '- -port --port-'   

>-- --+------------------------------+-- --+---------+-- ------->
      '- -sslcert --certificate_file-'     '- -name -'      

>--+------------+----------------------------------------------><
   '- -primary -'   

Parameters

-ip ip_address
(Required) Specifies the key server's IP address. The value must be in the form of a standard Internet Protocol version 4 (IPv4) or Internet Protocol version 6 (IPv6) address.
-port port
(Optional) Specifies the key server's TCP/IP port. The value must be a number 1 - 65535. The default value is the same as the default listening port used for key servers of the currently enabled type.
-sslcert certificate_file
(Optional) Specifies the key server's self-signed certificate. The value must be a file path string.
-name
(Optional) Specifies the key server object name. The value must be an alphanumeric string.
-primary
(Optional) Specifies the primary key server.

Description

This command creates a key server object.

The first key server object must be the primary object, which is created by specifying the -primary parameter. If key management is enabled, you must use the primary key server object to create keys.

When a key server object is created, it is automatically validated. If the validation is not successful, the command fails and an error message is displayed.

An invocation example

mkkeyserver -ip 10.0.1.54 -sslcert /tmp/isklm_public_server_cert.pem -primary

The resulting output:

Key Server, id [0], successfully created